Last month I talked about the essential nature of third-party auditing and pen testing. It's smart security policy, good business, and, more likely than not, a regulatory requirement. The problem, though, is that it tends to be pricey, time-consuming, and invasive.
Fortunately, there's a solution that's free, non-invasive, and requires very little of your time: Let a security vendor do it. I know, I can hear the protests now. "I don't want to let some vendor bring their hardware and software on my network!" Or "How... [Read More]